|
196271
|
5.5 |
MEDIUM
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe keeps a log in a folder where unprivileged users have write permissions. The logs are generated in a predict…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-9451
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196272
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9149
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196273
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application bypass mechanism vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9148
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196274
|
7.8 |
HIGH
Local
|
huawei
|
magic_ui
emui
|
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bou…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9147
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196275
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to cause memory leakage and doS attacks by carefully construct…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2020-9146
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196276
|
6.5 |
MEDIUM
Network
|
huawei
|
usg9500_firmware
|
There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operat…
|
NVD-CWE-noinfo
|
CVE-2020-9212
|
2024-11-21 14:40 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196277
|
6.7 |
MEDIUM
Local
|
huawei
|
eudc660_firmware
|
The eUDC660 product has a resource management vulnerability. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper …
|
NVD-CWE-noinfo
|
CVE-2020-9206
|
2024-11-21 14:40 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196278
|
7.5 |
HIGH
Network
|
huawei
|
ngfw_module_firmware
nip6300_firmware
nip6600_firmware
nip6800_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
usg9500_firmware
|
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit…
|
NVD-CWE-noinfo
|
CVE-2020-9213
|
2024-11-21 14:40 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196279
|
7.8 |
HIGH
Local
|
zohocorp
|
manageengine_desktop_central
|
The MPS Agent in Zoho ManageEngine Desktop Central MSP build MSP build 10.0.486 is vulnerable to DLL Hijacking: dcinventory.exe and dcconfig.exe try to load CSUNSAPI.dll without supplying the complet…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-9367
|
2024-11-21 14:40 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196280
|
5.5 |
MEDIUM
Local
|
apache
|
asterixdb
|
When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81a…
|
CWE-22
Path Traversal
|
CVE-2020-9479
|
2024-11-21 14:40 |
2021-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
